Attackers Exploit OMIGOD Flaw in Azure Despite Microsoft Fixes

Attackers Exploit OMIGOD Flaw in Azure Despite Microsoft Fixes

Feb 2, 2022 | News

Cybercriminals are targeting Linux-based servers running Microsoft’s Azure public cloud environment that are vulnerable to flaws after Microsoft didn’t automatically apply a patch on affected clients in its infrastructure. Read the full article here If you’d like to...
Cloudflare Launches Public Bug Bounty Program

Cloudflare Launches Public Bug Bounty Program

Feb 2, 2022 | News

Cloudflare on Tuesday added a public bug bounty program, the vendor’s first such initiative since the cloud security company started its bug bounty program in 2014. In a Feb. 1 blog post, the company said the first iteration of its bug bounty program was pure...
7 Privacy Tips for Security Pros

7 Privacy Tips for Security Pros

Jan 31, 2022 | News

Track the Data Tom Garrubba, a vice president at Shared Assessments, says privacy is specifically focused on what an organization is permitted to do with the data it collects from a data subject. With that in mind, it’s important for companies to “follow the data,” he...
Is Multicloud Ready to Become the Cornerstone of DevOps?

Is Multicloud Ready to Become the Cornerstone of DevOps?

Jan 31, 2022 | News

Today’s IT reality is distributed and heterogeneous, from the applications to the infrastructure they run on. Organizations are navigating how to deliver apps across any combination of data centers, public clouds and to the edge without compromising...
Data Privacy Week: Raising Awareness and Encouraging Compliance

Data Privacy Week: Raising Awareness and Encouraging Compliance

Jan 28, 2022 | News

Data Privacy Day is not just a day anymore. For the first time, it’s Data Privacy Week — a week-long effort to empower individuals and enterprises worldwide to respect privacy, safeguard data, enable trust, and just as important, raise awareness and promote privacy...
Data Privacy Day 2022: Views and Tips from Top Industry Experts

Data Privacy Day 2022: Views and Tips from Top Industry Experts

Jan 28, 2022 | News

Data Privacy Day, an international “holiday” that occurs each year on January 28, was created to raise awareness and promote privacy and data protection best practices. The National Cyber Security Alliance (NCSA) assumed leadership of Data Privacy Day from...
Threat Modeling — The Short Version

Threat Modeling — The Short Version

Jan 28, 2022 | News

Threat Modeling is the structured practice of identifying and prioritizing potential threats and vulnerabilities, and the prioritization of mitigations to protect assets, including confidential data and intellectual property. Read More
Threat Modeling — The Short Version

What Is DevSecOps?

Jan 27, 2022 | News

DevSecOps – short for development, security and operations – combines separate traditional development, security and operations functions to increase the security of applications and digital services Read More

ThreatModeler

ThreatModeler revolutionizes threat modeling during the design phase by automatically analyzing potential attack surfaces. Harness our patented functionalities to make critical architectural decisions and fortify your security posture.

Learn more >

CloudModeler

Threat modeling remains essential even after deploying workloads, given the constantly evolving landscape of cloud development and digital transformation. CloudModeler not only connects to your live cloud environment but also accurately represents the current state, enabling precise modeling of your future state

Learn more >

IaC-Assist

DevOps Engineers can reclaim a full (security-driven) sprint with IAC-Assist, which streamlines the implementation of vital security policies by automatically generating threat models through its intuitive designer.

Learn more >